$ rpki-client -vvf rpki-rsync.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a313030303a3a2f34382d3438203d3e20313339343439.roa File: 323430353a373763303a313030303a3a2f34382d3438203d3e20313339343439.roa (raw, json) Hash identifier: nGWF5bh5L9qLAbKGSQCdAzJDlVgMMzvWoQdUcdutKoU= Subject key identifier: D5:63:75:71:15:FF:51:F3:4B:14:D0:81:3C:DA:F2:C0:1F:75:1C:C0 Certificate issuer: /CN=156CC42EB50F86E1E04B2F6FCA41C903B5A0385C Certificate serial: 374C2B4E26B437CA5ED16CDA5980BA7A4621D5CC Authority key identifier: 15:6C:C4:2E:B5:0F:86:E1:E0:4B:2F:6F:CA:41:C9:03:B5:A0:38:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/156CC42EB50F86E1E04B2F6FCA41C903B5A0385C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a313030303a3a2f34382d3438203d3e20313339343439.roa Signing time: Sun 03 May 2026 02:44:42 +0000 ROA not before: Sun 03 May 2026 02:39:42 +0000 ROA not after: Sun 02 May 2027 02:44:42 +0000 asID: 139449 IP address blocks: 2405:77c0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/156CC42EB50F86E1E04B2F6FCA41C903B5A0385C.crl rsync://rpki-rsync.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/156CC42EB50F86E1E04B2F6FCA41C903B5A0385C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/156CC42EB50F86E1E04B2F6FCA41C903B5A0385C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:4c:2b:4e:26:b4:37:ca:5e:d1:6c:da:59:80:ba:7a:46:21:d5:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=156CC42EB50F86E1E04B2F6FCA41C903B5A0385C Validity Not Before: May 3 02:39:42 2026 GMT Not After : May 2 02:44:42 2027 GMT Subject: CN=D563757115FF51F34B14D0813CDAF2C01F751CC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:03:c8:d1:c6:f2:c0:12:5f:16:57:de:79:d8: 7c:10:4a:94:39:d4:ed:26:4c:b5:45:5d:31:bd:fc: 87:7a:04:eb:49:27:10:dc:54:cf:c1:9d:49:f1:8a: b5:f9:67:ab:f6:78:9c:68:c7:82:3b:68:ba:54:d4: b4:6c:fa:82:ac:f3:22:c0:75:c7:40:10:eb:84:6b: d2:49:c0:fb:d7:0e:b8:28:67:08:d3:ea:0f:37:a8: b4:7e:fb:2c:dd:ef:df:ed:e7:50:ea:d8:8f:be:28: 66:c7:0d:25:61:60:3b:d0:db:07:67:a3:82:df:23: a9:14:be:80:3a:06:46:11:44:25:25:d0:24:d6:ed: 9b:04:af:80:0c:e9:38:00:32:18:d6:3e:da:a8:2b: 20:09:9e:b0:7f:f8:d4:fc:5e:43:c9:a9:c4:8b:3d: dc:24:1e:03:db:dc:c2:dd:e0:67:48:f1:72:1b:e9: 81:e1:b0:3e:e7:46:37:fc:45:c1:a4:a0:ba:b1:a8: a3:6c:be:8c:37:ee:dd:a2:c5:bd:52:d8:2b:5d:a0: 57:46:28:99:51:58:be:97:26:be:85:a5:b0:1b:a4: 5c:c7:75:95:dd:80:2f:a4:c7:9c:1b:a7:e3:cd:9f: 62:e1:f1:04:ba:19:04:3b:c8:a6:cf:85:13:50:c7: 47:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:63:75:71:15:FF:51:F3:4B:14:D0:81:3C:DA:F2:C0:1F:75:1C:C0 X509v3 Authority Key Identifier: keyid:15:6C:C4:2E:B5:0F:86:E1:E0:4B:2F:6F:CA:41:C9:03:B5:A0:38:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/156CC42EB50F86E1E04B2F6FCA41C903B5A0385C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/156CC42EB50F86E1E04B2F6FCA41C903B5A0385C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a313030303a3a2f34382d3438203d3e20313339343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:77c0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 19:a5:a8:26:bd:01:cc:18:61:17:4f:b9:a0:4d:e8:af:e3:8c: 7a:82:d6:03:36:53:f4:ab:19:85:c5:2b:ed:10:64:0a:c7:01: a5:33:88:07:86:34:92:26:9b:89:94:77:52:e6:1f:3d:75:28: cb:67:4d:b0:8f:cc:1c:b2:19:98:5d:17:2b:0d:02:09:ce:87: 61:f0:83:1f:6c:f7:37:cb:db:a5:a3:72:07:be:57:60:ca:d0: ea:3e:e5:c9:c3:56:c9:6b:1a:87:9f:35:4c:07:15:97:89:a9: db:12:d8:f1:8d:eb:70:45:4d:73:3f:10:e7:9e:8a:98:e2:25: 48:9f:ab:5d:fe:92:f0:52:a6:42:b9:40:fd:86:d6:34:b2:d2: 9f:b7:75:44:b4:09:6a:87:7a:14:23:8b:27:7f:7d:dc:59:e6: 5c:47:1f:d9:50:b1:da:b5:98:92:23:f3:fa:31:20:8e:8f:78: 05:17:ad:07:99:25:18:4f:49:ad:e4:ab:75:fc:d7:ab:0b:a2: b0:72:9d:97:90:cf:8c:25:52:d7:3e:7c:e3:38:e1:a4:e8:58: 74:34:7a:dc:ce:9d:9d:b8:c2:21:cb:a6:a9:31:71:1f:40:a9: 2f:57:f2:57:13:cd:62:0a:98:61:f4:b3:5b:4f:4e:05:f7:ca: 97:50:d3:b4 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUN0wrTia0N8pe0WzaWYC6ekYh1cwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU2Q0M0MkVCNTBGODZFMUUwNEIyRjZGQ0E0MUM5MDNC NUEwMzg1QzAeFw0yNjA1MDMwMjM5NDJaFw0yNzA1MDIwMjQ0NDJaMDMxMTAvBgNV BAMTKEQ1NjM3NTcxMTVGRjUxRjM0QjE0RDA4MTNDREFGMkMwMUY3NTFDQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsA8jRxvLAEl8WV9552HwQSpQ5 1O0mTLVFXTG9/Id6BOtJJxDcVM/BnUnxirX5Z6v2eJxox4I7aLpU1LRs+oKs8yLA dcdAEOuEa9JJwPvXDrgoZwjT6g83qLR++yzd79/t51Dq2I++KGbHDSVhYDvQ2wdn o4LfI6kUvoA6BkYRRCUl0CTW7ZsEr4AM6TgAMhjWPtqoKyAJnrB/+NT8XkPJqcSL PdwkHgPb3MLd4GdI8XIb6YHhsD7nRjf8RcGkoLqxqKNsvow37t2ixb1S2CtdoFdG KJlRWL6XJr6FpbAbpFzHdZXdgC+kx5wbp+PNn2Lh8QS6GQQ7yKbPhRNQx0f3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU1WN1cRX/UfNLFNCBPNrywB91HMAwHwYDVR0j BBgwFoAUFWzELrUPhuHgSy9vykHJA7WgOFwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzlmYmUwODgtMGQ4NC00Nzg5LWI0MDUtMjVjMmU3NjkzN2Y2LzAvMTU2Q0M0MkVC NTBGODZFMUUwNEIyRjZGQ0E0MUM5MDNCNUEwMzg1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTZDQzQyRUI1MEY4NkUxRTA0QjJGNkZDQTQxQzkwM0I1QTAz ODVDLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc5ZmJlMDg4LTBkODQtNDc4OS1i NDA1LTI1YzJlNzY5MzdmNi8wLzMyMzQzMDM1M2EzNzM3NjMzMDNhMzEzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BXfAEAAwDQYJKoZIhvcNAQELBQADggEBABmlqCa9AcwYYRdPuaBN6K/jjHqC1gM2 U/SrGYXFK+0QZArHAaUziAeGNJImm4mUd1LmHz11KMtnTbCPzByyGZhdFysNAgnO h2Hwgx9s9zfL26Wjcge+V2DK0Oo+5cnDVslrGoefNUwHFZeJqdsS2PGN63BFTXM/ EOeeipjiJUifq13+kvBSpkK5QP2G1jSy0p+3dUS0CWqHehQjiyd/fdxZ5lxHH9lQ sdq1mJIj8/oxII6PeAUXrQeZJRhPSa3kq3X816sLorBynZeQz4wlUtc+fOM44aTo WHQ0etzOnZ24wiHLpqkxcR9AqS9X8lcTzWIKmGH0s1tPTgX3ypdQ07Q= -----END CERTIFICATE-----Generated at Wed May 13 14:27:19 2026 by rpki-client